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DEVICE AND PROCESS FOR REMOTE AUTHENTICATION OF A USER 

The present invention relates to the field of secure remote authentication systems for 
controlling a user's local access to a station. 

In a distributed environment, there are known secure access control systems that 
provide secure remote control through a network of users' access to protected resources. 



Within the framework of the present invention, the term "resource" should be 
understood in its broadest sense. It includes, among other things, software applications, 
databases or files, specific fields of these files, complete systems, machines, specific devices 
such as peripherals, etc. 

15 Secure access control systems guarantee the identification of users in order to 

determine whether they are among the persons authorized to use the resources in question. A 
secure access control system generally includes a centralized database in which information 
about the users, their means of authentication, the operations authorized, etc, are stored. The 
means of authentication can consist in, for example, a password, a chip card, a single-use 

20 password, etc. 

An administrator manages the central database homogeneously throughout the 
information system. Each user is authenticated by a central authentication server having 
access to the central database. 

Secure remote access control systems pose a problem when one of the elements 

25 involved in the authentication is no longer working. Thus, for example, in case of the server's 
unavailability or failure, in case of a failure at the network level, in case of a software or 
hardware problem that prevents access to the network, in case of a problem in the 
authentication software itself or in its configuration, or in other equivalent cases, it becomes 
impossible for anyone, most particularly those in charge of maintenance, to be authenticated 

30 and hence to connect, even locally. The operator in charge of maintenance is forced to wipe 
out the information system, for example, by completely reinstalling it. 
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There is a known solution that consists of using a local security cache generated 
during the first authentication of the user. The local cache contains all the elements that make 
it possible to authenticate the user locally. The cache is subsequently re-usable by the user in 
question. This solution has the drawback, for the operators in charge of maintenance, of 
having to be authenticated a first time in all of the stations in which they are capable of 
intervening, in order to create a cache dedicated to themselves in each of said stations. 
Moreover, if any failure occurs before a user has had the time to connect to his station, said 
^iser cannot connect without the local security cache. 



^^^""""^ An object of the present invention is to authenticate a user locally in a station while 
avoiding a remote authentication performed by a server through a network, the server 
centralizing all of the data involved in access authorizations such as user names, passwords, 
etc. 

An object of the present invention is to make it possible to connect to a station locally 
when the authentication server, the network, or another component is down or unavailable. 



In this context, the present invention offers a process for the remote authentication of 
a user for local access to a local machine belonging to a network, the network including a 
remote server managed by an administrator, the server containing means for classifying 
information, characterized in that it consists of: 

• creating a challenge D capable of being transmitted by communication means, the 
commimication means connecting the user with the administrator; 

• communicating to the administrator the challenge D created, as well as elements 
known by the user, via the communication means; 

• performing a predetermined calculation by means of the server in order to obtain a 
response RD that is a fiinction of the challenge D and/or of predetermined data; 

• transmitting to the user the response RD obtained through the communication means; 

• performing a calculation by means of the local machine in the same way as the server 
in order to obtain a response RDl that is a function of the challenge D and/or of 
predetermined data; 




-Smnmar)^ of the Invention- 
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• comparing the response RD transmitted by the administrator and the response RDl 
calculated by the local machine and locally authorizing the user's connection to the 
machine based on the result of the comparison. 

The present invention also offers a system for the remote authentication of a user for 
local access to a machine called a local machine, belonging to a network that includes a 
remote server managed by an administrator, the server containing means for classifying 
information, characterized in that it comprises communication means connecting the user 
with the administrator, in that each local machine comprises a user authentication module 
comprising a user module for generating a challenge, and a user module for calculating a 
response to a challenge, and in that the server comprises an administrative authentication 
module comprising an administrative module for calculating a response to a challenge. 



Other characteristics and advantages of the invention will become clear in light of the 
following description, given as an illustrative and non-limiting example of the present 
invention, in reference to the attached drawings in which: 

•Fig. 1 is a simplified global diagram of the authentication system according to the 
present invention; 

•Figs, 2, 4 through 6 represent the screen of a local machine of the computer system 
according to an embodiment of the present invention; 

•Fig. 3 represents the screen of a server of the computer system according to an 
embodiment of the present invention. 



- Descripti air uf au Embodiment of the Invention 



Throughout the following description, the term "local" defines proximity to a 
reference point constituted by a user of the systeni^^ecor ding to the mv o ntion, th cterm 
"remote" definiftg-a-distanee from ^ 3am &^y^^^^^ 

As represented in Fig. 1, the present invention relates to a computer system 1 
comprising at least two machines 2 with their standard essential components, i.e., processor. 
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central processing unit, input/output, etc. One of the outputs of the machines 2 is embodied 
by a screen on which the dialog boxes represented in Figs. 2 through 6 are displayed. One of 
the machines 2 plays a specific role in relation to the others and is called a remote server 3, 
the other machines being called local machines 4. 
5 The remote server 3 is linked to the local machines 4 through a network 5. The server 

3 includes a central database 6 in which information on the users 7 of the system 1 is stored. 
In particular, said information, for each user 7, can consist in a user name and a password. An 
administrator 8 manages the central database 6. 

The system 1 comprises conmiunication means 9 between each user 7 and the 

1 0 administrator 8. According to one embodiment, the communication means 9 link a user 7 
directly and/or in a secure manner to an administrator 8. According to a development of the 
invention that is particularly advantageous when the network 5 is down or unavailable, the 
communication means 9 work offline, i.e., without connecting to the network. The 
commimication means, as illustrated in Fig. 1, can consist in a telephone line. Any other 

1 5 communication means such as for example a telex, a radio line, or a computer connection can 
be used. 

Software user authentication modules 10 are provided in each local machine 4. They 
comprise a user module for generating a challenge 1 1 and a user module for calculating a 
response to a challenge 12. A software administrative authentication module 13 is provided in 

20 the server 3. It comprises an administrative secret modification module 14 and an 

administrative module for calculating a response to a challenge 15. The relationships between 
modules can exist in any other form; thus, for example, the administrative secret modification 
module 14 may not be contained in the administrative authentication module 13. 

Graphical interfaces are provided in each of the machines 2 for dialoging with a user 

25 or administrator. In particular, they display dialog boxes (represented in Figs. 2 through 6) on 
the screens of the machines 2. The dialog boxes are used to enter elements communicated by 
the user or the administrator as well as to display information intended for them. 

The remote server 3 and each local machine 4 also include respective administrative 
16 and the user 17 storage means. The information contained in the administrative storage 

30 means 16 may be contained in the central database 6. In that case, the administrative storage 
means 16 are eliminated. 



TYSO01 :91 11614vO|T2147-906343l05\22\00 



^ T2147-906343?CALVEZ-US 3780/PB 

As shown in Fig. 1, the user 7 has a local machine 4 to which he wishes to connect. 
The user 7 enters into the local machine 4 a user name and a password by means of a 
specially adapted dialog box, and chooses one of the connection modes that are offered him. 
In the embodiment described, there are several connection modes offered to the user. The so- 
5 called normal mode consists in connecting the user 7 to the remote server 3 through the 
network 5, The so-called maintenance mode consists in locally connecting the user 7 to the 
local machine 4 after remote authentication by the administrator 8. 

The user 7 chooses the normal mode. The user authentication module 10 
communicates the user's access authorization request, user name and password to the 

10 administrative authentication module 13 through the network 5. The administrative 

authentication module 1 3 verifies the presence in the central database 6 of the user name and 
the associated password. If the user name or the associated password is not in the database 6, 
access is denied. If the user name and the associated password are in the database 6, the 
administrative authentication module 13 transmits its authorization to the user authentication 

15 module 10. The connection of the user 7 to the local machine 4 and to the network 5 is 
established. The authentication described above in the normal mode is called network 
authentication. 

The administrative storage means 16 contain a secret called a Master Station Secret 
MSS. The Master Station Secret MSS is for example constituted by a byte string; the Master 

20 Station Secret MSS is entered by the administrator 8 or randomly generated by the server 3, 
for example by the administrative authentication module 13. It is capable of being modified 
over time. The Master Station Secret is accompanied by a version number N. The version 
number N is incremented v^th each modification of the Master Station Secret. The initial 
value of the version number N is 0. During a first successful connection in the normal mode, 

25 the administrative authentication module 13 transmits the Master Station Secret MSS and the 
associated version number N, contained in the administrative storage means 16, to the local 
machine 4 in question. 

To prevent the Master Station Secret MSS from being used in another local machine 4 
simply by being copied from one machine to another, the administrative secret modification 

30 module 14 modifies the Master Station Secret MSS using a modification key C that depends 
on the local machine 4 in question. The secret obtained is called a Station Secret SS. The 
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Station Secret SS obtained, as well as the version nximber N of the corresponding Master 
Station Secret MSS are transmitted to the local machine 4 in question and stored in the user 
storage means 17 of the local machine 4 in question. 

The modification key C can correspond, for example, to the concatenation of the 
5 Master Station Secret and the name of the local machine 4, followed by the hash of the 
concatenated string obtained by a one-way hash function such as, for example, the known 
function MD5 or SHA: 

Station Secret = C [Master Station Secret] 

Station Secret = [Master Station Secret + name of the local machine in questionj^ash 
10 The name of the local machine 4 is transmitted, as will be seen below, by the user 7. 

As shown in Fig. 1 , the network 5 is down. The user 7 can no longer connect in the 
normal mode. The user 7 uses the process according to the invention to connect to the local 
machine 4 in question. 

The remote authentication process according to the invention consists of: 
1 5 • creating a challenge D capable of being transmitted by the communication means 9, 
the communication means 9 connecting the user with the administrator 8; 

• communicating to the administrator 8 the challenge D created, as well as elements 
known by the user, via the communication means 9; 

• performing a predetermined calculation by means of the server 3 in order to obtain a 
20 response RD that is a function of the challenge D and/or of predetermined data; 

• transmitting to the user 7 the response RD obtained through the communication 
means 9; 

• performing a calculation by means of the local machine 4 in the same way as the 
server 3 in order to obtain a response RDl that is a function of the challenge D and/or 

25 of predetermined data; 

• comparing the response RD transmitted by the administrator to the response RDl 
calculated by the local machine 4 and locally authorizing the user's connection to the 
machine 4 based on the result of the comparison. 

The remote authentication process according to the invention consists, first of all, of 
30 creating a challenge D capable of being transmitted by the communication means 9. In the 
embodiment illustrated, the challenge is created by means of the local machine 4. According 
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to one embodiment of the invention, the challenge exists in the form of a byte string, and for 
example of a character string. The challenge is created by means of the user authentication 
module 10, and more precisely by means of the user challenge generating module 11 of the 
local machine 4. To do this, as shown in Fig. 2 which represents the screen of the local 
5 machine 4, the user 7 enters into the machine 4 a user name "DUPONT" and a password 

represented by asterisks on the screen. The user name and the password are temporarily 
stored in the user storage means 17. The user 7 indicates to the local machine 4 that he wishes 
to be authenticated locally without going through the network authentication by choosing the 
adapted connection mode. The user 7 chooses the maintenance mode: he fills in the box 
10 designated by the word "mode" with the word "maintenance". 

The user challenge generating module 1 1 calculates a challenge D. The challenge D 
is, according to one exemplary embodiment, a string of twelve alphanimieric characters 
constituted in the following way: 

The first byte represents the type of challenge: it can have two values, L for limited 
15 and S for standard, each corresponding to a type of challenge. The standard challenge 

is used in the case where the local machine 4 in question has connected to the server 3 
at least once, the limited challenge being used if this is not the case. The response to 
the first, so-called standard type of challenge is calculated as a function of the Station 
Secret SS transmitted by the remote server 3 to the local machine 4 in question during 
20 the first connection of the machine 4 to the server 3 through the network 5. The 

response to the challenge is a function of the Station Secret SS shared between the 
server 3 and the local machine 4 in question. If there has been no such first network 
authentication, there is a second, so-called limited type of challenge that does not 
involve the Station Secret. The response to the second type of challenge is a function 
25 of a fixed security key CC known by the machine 4 in question and by the server 3; 

• The second and third bytes represent the version number N of the Master Station 
Secret contained in the user storage means 17; 
The fourth through twelfth bytes are random alphanumeric characters. 
Any other embodiment of the challenge can be used. The type of challenge and the 
30 version number may not be contained in the challenge, but communicated by the user via the 
communication means 9. It is also possible to insert other elements known by the user 7 
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and/or by the local machine 4 into the challenge. 

The server 3 calculates the Station Secret SS from the Master Station Secret MSS 
stored in the administrative storage means 16 and commimicates it to the local machine 4 in 
question during a first connection in the normal mode. The Station Secret shared between the 
5 local machine 4 and the remote server 3 makes it necessary to go through the remote server 3 
in order to unlock any local machine 4. No machine 2 other than the remote server 3 can 
unlock a local machine 4. 

The server 3 maintains in the administrative storage means 16 each version of the 
Master Station Secret if it is not possible to update all of the machines 4 simultaneously. 
1 0 The challenge D has a form adapted to its transmission by the user 7 to the 

administrator 8 through the communication means 9. The challenge is advantageously short 
and intelligible in order to be transmitted more easily, and in order to reduce the risk of 
errors. The challenge generated is indicated to the user in the box designated by the word 
"Challenge" in the dialog box displayed on the screen of the local machine 4, as illustrated in 



The process according to the invention then consists of communicating to the 
administrator 8 the challenge D created, as well as elements known by the user 7, via the 
communication means 9. The user 7 contacts the administrator via the communication means 
9, commimicating to him the challenge D generated by said machine as well as elements 

20 known by him, such as his user name and the name of the local machine 4 in question. The 
administrator 8 chooses the maintenance mode in the server 3. The dialog box illustrated in 
Fig. 3 is displayed on the screen of the server 3. The administrator 8 enters into the server 3 
the name of the user 7, the name of the local machine 4 and the challenge D communicated 
by the user and clicks on the "Apply" box (Fig. 3). 

25 The process according to the invention then consists of performing a predetermined 

calculation by means of the remote server 3 in order to obtain a response RD that is a function 
of the challenge D and/or of predetermined data. 

The administrative authentication module 13 analyzes the first byte of the challenge 
entered in order to determine its type, standard or limited. In the case of a standard challenge, 

30 the administrative authentication module 13 notes the version number of the Master Station 
Secret given by the second byte of the challenge. In the case of a limited challenge, the 
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second byte is not taken into consideration. The administrative response calculating module 
15 calculates a response RD to the challenge D that is adapted to the given type of challenge; 
the response RD is capable of being transmitted by the communication means 9. The 
response RD to the challenge, just like the challenge D, is small in size and is intelligible. The 
5 response RD depends on the challenge and on predetermined data such as the user name, 
information stored in the central database 6, i.e., the password associated with the user name 
communicated by the user, and 

• in the case of a standard challenge, the secret shared between the server 3 and the 
local machine 4 (SS), a secret that itself depends on the name of the local machine 4 

10 in question; 

• in the case of a limited challenge, the name of the local machine 4 in question and the 
fixed security key CC shared between the server 3 and the local machine 4. 

The administrative response calculating module 15 calculates the response RD to the 
challenge in the following way: 
1 5 For a standard type challenge: 

The administrative module for calculating a response to a challenge 15 calculates the 
Station Secret, taking into account the version number of the Master Station Secret given by 
the challenge. The corresponding version of the Master Station Secret is searched for in the 
administrative storage means 16. The secret modification module 14 applies the modification 
20 key C to the Master Station Secret in order to obtain the Station Secret: the Master Station 
Secret and the local name of the machine 4 transmitted by the user are concatenated. The 
character string thus obtained is hashed in accordance with the hash algorithm of the secret 
modification module 14. 

The password associated with the user name entered is searched for in the database 6 
25 and hashed by means of a one-way algorithm such as the algorithms MD5 or SHA in order to 
obtain a coded password. 

The response to a standard type challenge is obtained by hashing a character string 
corresponding to the concatenation in a predetermined order of the user name and the 
challenge, both transmitted by the user, the coded password and the Station Secret calculated 
30 as described above. 

According to one embodiment, the equation for obtaining the response to a challenge 
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of the standard type is the following: 

RD = [Station Secret + user name + coded password + Challenge + Station 

SeCretJhajjjj^npa^gna^jon 

For a limited type challenge: 

The password associated with the user name entered is searched for in the database 6 
and hashed by means of a one-way algorithm such as the algorithms MD5 or SHA in order to 
obtain a coded password. 

The response to a limited type challenge is obtained by hashing a character string 
corresponding to the concatenation in a predetermined order of the user name transmitted by 
the user, the coded password, the challenge transmitted by the user, the local name of the 
machine 4 transmitted by the user and a fixed security key CC contained in the storage means 
16 of the servers. 

The equation for obtaining a response to a limited type challenge is for example the 
following: 

RD = [user name + coded password + Challenge + name of the machine 4 + fixed key 



The fixed security key CC can take any form and can for example be integrated into 
the hardware. For example, it exists in the form of a byte string integrated into the machines 
2. 

The hashing of the concatenation is performed for example by means of a one-way 
algorithm such as the algorithms MD5 or SHA. 

Any other form of response can be used. The response RD can be calculated fi-om 
only certain elements among those described above, or fi-om specific combinations of all or 
some of these elements. 

The response RD calculated is displayed on the screen of the server 3 in the box 
designated by the word "Response" (Fig. 3). 

The process then consists of transmitting to the user 7 the response RD obtained 
through the communication means 9; the administrator 8 transmits the response RD to the 
challenge to the user 7 through the communication means 9. 

The process then consists of performing a calculation by means of the local machine 4 
in the same way as the remote server 3 in order to obtain a response RDl that is a fimction of 



I hashconcatenation 
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the challenge D and/or of predetermined data. 

The user 7 enters the response RD to the challenge into the local machine 4 in 
question in the box of the dialog box designated by the word "Response", as shown in Fig. 2, 
and clicks on the OK box. The user module for calculating a response to a challenge 12 
5 calculates the response RDl to the challenge D generated by the user challenge generating 
module 1 1 in the same way as the administrative module for calculating a response to a 
challenge 15. The expression "in the same way as" means that the calculations performed 
respectively by the administrative module for calculating a response to a challenge 1 5 and by 
the user module for calculating a response to a challenge 12 are based on the same principles 
10 so that the responses obtained by the respective calculations can be compared and so that the 
result of this comparison shows that the information used respectively by the remote server 3 
and by the local machine 4 to calculate responses is identical. 

The information required for the calculation of said response is available: 

• the user name, the password and the challenge are stored in the user storage means 17; 
15 • the name of the local machine 4 is known by said local machine 4; 

• the Station Secret SS or the fixed security key CC are stored in the user storage means 
17. 

Once the response has been calculated, the user name, the password and the challenge 
are deleted firom the user storage means 17. 

20 The process then consists of comparing the response RD transmitted by the 

administrator to the response RDl calculated by the local machine 4 and of authorizing the 
usefs connection to the machine 4 locally based on the result of the comparison. 

The user authentication module 10 compares said response RDl to the response RD 
obtained by the server 3 and transmitted by the administrator. Several types of comparison 

25 can be used, depending on the calculation performed in the server 3 and the local machine 4. 
According to one exemplary embodiment, the user module for calculating a response to a 
challenge 12 and the administrative module for calculating a response to a challenge 15 use 
an identical calculation algorithm: the comparison type is therefore that of the identity of the 
responses obtained by the server 3 and the local machine 4, respectively. If the response RDl 

30 obtained by the user response calculating module 12 is identical to the response RD 
transmitted by the administrator through the communication means 9, the user is 
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authenticated and is authorized to connect locally to the machine 4 in question. 

According to one embodiment of the invention, the remote authentication process 
according to the invention comprises an additional local authentication. When the user has 
connected locally in accordance vdth the process according to the invention as described 
5 above, he may wish to disconnect temporarily. In that case, he is provided with an additional 
local authentication in order to avoid having to repeat the entire process according to the 
invention. 

As shown in Fig. 4, the user authentication module 10 prompts the user 7 to enter into 
the machine 4 a user name and a password for the maintenance mode. 
10 The maintenance mode user name and the maintenance mode password are stored in 

the user storage means 17. 

The user authentication module 10 checks to see if the maintenance mode user name 7 
already exists in the storage means 17. The storage means 17 can exist in the form of a data 
base. If the maintenance mode user name exists, the maintenance mode password associated 
15 with the maintenance mode user name entered by the user is stored in the storage means 17; it 
replaces any existing password associated with the maintenance mode user name in question. 
If the maintenance mode user name does not exist, it is created. 

At the end of the session, the user, when disconnecting, can exit from or remain in the 
maintenance mode, as shown in Fig. 5. If he exits from the maintenance mode, he must repeat 
20 the remote authentication process in its entirety. If he remains in the maintenance mode, he 
will only need to enter his maintenance mode user name and associated maintenance mode 
password, as shown in Fig. 6. The user authentication module 10 checks to see whether the 
maintenance mode user name and password are stored in the storage means 17, and whether 
they correspond to those stored. If so, the local connection is again authorized without having 
25 to repeat the remote authentication process according to the invention. 

The maintenance mode can provide for a limited duration during which the user can 
connect and disconnect. If the user disconnects after having exceeded the authorized duration, 
he must again be authenticated according to the invention. 



30 and hence the maintenance mode and the duration of the maintenance mode, can be 

configured in the local machines 4. It must be noted that the authorization to connect locally 



The capability to use the remote authentication process according to the invention. 
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is given by an administrator for a given station. 

The process for the remote authentication of the user 7 for local access to the local 
machine 4 belonging to a network 5 that includes the remote server 3 managed by the 
administrator 8 and containing the means 6 for classifying information, is characterized in 
5 that it consists of: 

• creating by means of the local machine 4 a challenge D capable of being transmitted 
by the communication means 9, the communication means connecting the user with 
the administrator 8; 

• communicating to the administrator 8 the challenge D created, as well as elements 
1 0 knovm by the user, via the communication means 9; 

• performing a predetermined calculation by means of the server 3 in order to obtain a 
response RD that is a function of the challenge D and/or of predetermined data; 

• comparing the response RD transmitted by the administrator to the response RDl 
calculated by the local machine 4 based on the result of the comparison. 

15 The calculation performed by the server 3 consists of modifying, in accordance with a 

given algorithm, the challenge D and/or at least one of the following pieces of data; at least 
one piece of information issued by the classification means and known by the user, at least 
one secret shared between the server 3 and the local machine 4, at least one element 
communicated by the user. 

20 The calculation performed by the local machine 4 consists of modifying, in 

accordance with a given algorithm, the challenge D and/or at least one of the following pieces 
of data: at least one secret shared between the server 3 and the local machine 4, at least one 
element communicated by the user. 

The shared secret or secrets are entered into the server 3 and transmitted to the local 

25 machine 4 during a successful network authentication. 

The shared secret or secrets are modified by means of a modification key C that 
depends on the local machine 4 prior to being modified by the algorithm. 

The modification key consists of concatenating the secret or a combination of secrets 
existing in the form of a byte string called the Master Station Secret, and of hashing the byte 

30 string obtained by concatenation, by means of a calculation algorithm, in order to obtain a 
byte string called a Station Secret. 
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The shared secret or secrets are accompanied by a version number that is incremented 
each time they are modified. 

The challenge is constituted by an alphanumeric character string. 
The challenge is composed of: 
5 • a first byte representing the type of challenge, the type indicating whether a network 
authentication has been performed; 

• second and third bytes representing the version number of the shared information; 

• random alphanumeric characters of the fourth to twelfth bytes. ^ 

The response (RD; RDl) is calculated by hashing, in accordance with a calculation 
1 0 algorithm, a character string composed of the concatenation in a predetermined order of the 
challenge, the character string resulting from the transformation by a calculation algorithm of 
the user's password, the Station Secret and the user's name. 

The response (RD; RDl) can also be calculated by hashing, in accordance with a 
calculation algorithm, a character string composed of the concatenation in a predetermined 
15 order of the challenge, a fixed security key CC stored in the local machine 4 and in the server 
3, the name of the local machine 4, the character string resulting from the transformation by a 
calculation algorithm of the user's password and user name. 

The local connection authorized is temporary, the authorized duration being 
configurable. 

10 The process consists of locally authenticating the user 7 after a disconnection by the 

user 7 authenticated remotely. 

The present invention also relates to the system for the remote authentication of the 
user 7 for local access to the so-called local machine 4 belonging to a network 5 that includes 
a remote server 3 managed by the administrator 8 and containing means 6 for classifying 

15 information, characterized in that it comprises communication means 9 connecting the user 7 
with the administrator 8, in that each local machine 4 comprises a user authentication module 
10 that includes a user module for generating a challenge 1 1 and a user module for 
calculating a response to a challenge 12, and in that the server 3 comprises an administrative 
authentication module 13 comprising an administrative module for calculating a response to a 

10 challenge 14. 
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